Responsibilities:
GRC Focus:
Analyze and understand business processes and regulations relevant to SAP security and compliance.
Configure and maintain SAP Access Control (AccessControl 10.x) to manage user roles, authorizations, and access requests.
Define and implement Segregation of Duties (SoD) rules within GRC to prevent security conflicts.
Manage risk assessments and workflows within the GRC module to identify and mitigate security risks.
Generate and analyze reports on user activity, access controls, and potential risks.
Support audits and ensure compliance with internal security policies and external regulations.
Authorization Focus:
Analyze and understand user roles and authorization needs across different SAP modules.
Create, maintain, and modify user roles and assign appropriate authorizations within SAP security.
Perform risk analysis for authorization assignments and identify potential security gaps.
Develop and implement authorization strategies aligned with the principle of least privilege.
Troubleshoot user authorization issues and provide support to end-users.
Qualifications:
Proven experience as an SAP Functional Consultant
In-depth knowledge of SAP Security concepts, including user management, authorizations, and access controls.
Strong understanding of SAP GRC modules, particularly Access Control 10.x.
Experience in configuring and managing user roles, authorizations, and SoD rules within GRC.
Experience with performing risk assessments and generating reports within GRC.
Working knowledge of SAP authorization concepts, profiles, and transactions.
Experience in creating and maintaining user roles and assigning authorizations within SAP security.
Excellent analytical and problem-solving skills.
Strong communication and interpersonal skills to collaborate effectively with various stakeholders.
Ability to work independently and manage multiple priorities.
Experience with SAP S/4HANA is a plus.
Certifications like C_GRCAC_12 or C_AUTH_12 are a plus.
